Google has already announced the depreciation of the android enrollment using device administrator, for more information, please refer to https://developers.google.com/android/work/device-admin-deprecation and is highly encouraged to use Android enterprise for devices where GMS available. There is still a need to fallback to device admin in countries where there are no GMS available such as mainland China. If you don't have GMS services available, the device cannot be managed by Microsoft Endpoint Manager using the work profile. I recently did a blog post on this, for more information, please refer to https://systemcenterdudes.com/endpoint-manager-android-china/ In this blog post, we will see how to move…
Author: Eswar Koneti
Microsoft released Configuration Manager technical preview version 2010.2 which is 2nd release for Oct 2020. These Technical previews released every month for testing, explore new and improved features and provide feedback in case of any issues. This Technical previews brings the following new and improved features. Tenant attach: Troubleshooting portal lists a user’s devices based on usage Tenant attach: Create and deploy firewall policies Enhancements to applications in Microsoft Endpoint Manager admin Center Manage BitLocker policies and escrow recovery keys over a cloud management gateway (CMG) Improvements to deploy an OS over CMG using boot media Desktop Analytics support for…
I was recently assisting a customer on the Configuration Manager upgrade and after the upgrade is done, we need to upgrade the console on endpoint devices to the latest version. When you install/update your configuration manager site, there will be a change in the console version which needs to be updated on all your endpoints that have the console installed. If your site is running a new version of Configuration Manager build but your users are at lower version, users will be prompted to install the new console version, next time when they launch the console but it has the…
we had a requirement to hide the notification previews for teams and also outlook when there is any mail or conversation that happens on mobile devices due to security reasons. Microsoft Endpoint Manager (Intune) app protection policies has setting for admins to be able to block organizational data from appearing in Teams mobile notifications (e.g. message preview, channel, or sender name) on both iOS and Android end-user lock screens using the Intune Application Protection Policy (APP). This will allow you to specify how org data is shared via OS notifications for org accounts. In your intune app protection policies, edit…
Another month pass by and Microsoft released Technical preview for Configuration Manager 2010. These technical previews will be released every month and is for lab purpose ONLY.For more information about the technical preview and how to use it, please refer https://docs.microsoft.com/en-us/mem/configmgr/core/get-started/technical-previewThe active baseline version as of today for technical preview is 2007 and this can be downloaded from Evaluation Center.Following are the new features in Technical preview 2010.Deploy a task sequence to a user as an app model deployment typeStarting in the release, you can now deploy a non-OS deployment task sequence to a user-based collection when you add a…
Microsoft Ignite 2020 is a virtual event with so much interesting content around Microsoft endpoint manager. Following are some of the key takeaways from the ignite 2020 with MEM Program Manager’s on Managing Android devices with Microsoft Endpoint Manager. Intune has full android enterprise support across all scenarios. Recent public preview release for the management of corporate-owned devices with a work profile. Google is decreasing support for device administrator management and recommended to move to work profile using android enterprise Extensive configuration of the Microsoft Launcher app on fully managed devices Support for management of rugged devices with OEMconfig Support…
Microsoft released an in-console update (KB4580678) that helps you to enables the Run scripts feature from the Microsoft Endpoint Manager admin center (Intune) and is now available to the customers who have enabled the tenant attach in Configuration Manager. This update also resolves other tenant attach related issues and is a prerequisite to use the Run scripts feature from the admin center (Intune). If you have not yet started the tenant attach process, please start now https://docs.microsoft.com/en-us/mem/configmgr/tenant-attach/ and take actions of your devices from mobile anywhere without accessing the configuration manager console. Along with enabling the run script features from MEM admin…
Microsoft has released Microsoft Endpoint Manager Configuration Manager build 2006 (MEMCM) via the opt-in method (fast-ring) on 8th of August, followed by slow-ring (GA) on 31st Aug. If you want to install a new Configuration Manager site (fresh build), you can download the baseline version which is 2003 from the volume licensing portal, and then do an in-console update to 2006. For more information about what’s new in Configuration Manager 2006, please refer https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006 And for a step-by-step guide to 2006, https://systemcenterdudes.com/step-by-step-sccm-2006-upgrade-guide/ Once you complete the CAS/Primary site server update, you need to manually upgrade any secondary sites by right-clicking on…